7.21.0-rc.36
- build(deps): bump org.codehaus.mojo:extra-enforcer-rules from 1.11.0 to 1.12.0 by @dependabot[bot] in https://github.com/Activiti/Activiti/pull/5333
- build(deps): bump the github-actions group across 1 directory with 2 updates by @dependabot[bot] in https://github.com/Activiti/Activiti/pull/5334
- AAE-42677 Update tomcat to 10.1.52 by @killerboot in https://github.com/Activiti/Activiti/pull/5335
Full Changelog: https://github.com/Activiti/Activiti/compare/7.21.0-rc.35...7.21.0-rc.36
V1.80.0
API Changes
- core: Added PickResult.copyWithSubchannel() and PickResult.copyWithStreamTracerFactory() to simplify updating PickResult while preserving metadata. Load balancing policies should now ensure ForwardingSubchannel decorators are unwrapped before being returned in a pick result. (#12658) (eae16b251)
Bug Fixes
- core: Fixed the retry backoff jitter range to [0.8, 1.2] to align with the gRPC A6 specification. Retries will now occur more consistently around the calculated backoff interval. (#12639) (024fdd0ea) core: Fixed a race condition in RetriableStream where inFlightSubStreams counting could become inconsistent during concurrent retry and deadline events. This ensures that client calls (such as blockingUnaryCall) do not hang indefinitely and correctly receive a close signal. (#12649) (73abb4854)
Improvements
- api: Trigger R8's ServiceLoader optimization to reduce necessary configuration when using R8 Full Mode (470219f9c). This allows gRPC to avoid reflection, and the need to specify -keeps for various class’s constructors. Upgrade to protobuf 33.4 (#12615) (50c18f183)
- cronet: Introduced CRONET_READ_BUFFER_SIZE_KEY to allow customizing the read buffer size per-stream via CallOptions. Increasing the buffer size from the 4KB default can significantly improve performance for large messages by reducing JNI and context-switching overhead. (31fdb6c22)
- api: Moved FlagResetRule to api/testFixtures and updated ManagedChannelRegistry to honor the GRPC_ENABLE_RFC3986_URIS feature flag. This ensures that target parsing is consistent across the library when the new URI parser is enabled. (#12608)
- api: Updated NameResolverRegistry to natively support io.grpc.Uri. This is a foundational change that allows gRPC's name resolution system to handle URIs parsed with the new RFC 3986-compliant parser, ensuring more robust target handling. (#12609) (990348876)
- xds: Removed the GRPC_EXPERIMENTAL_XDS_SNI feature flag. SNI determination via xDS is now always enabled and follows gRFC A101, where SNI is derived from xDS configurations like auto_host_sni or UpstreamTlsContext.sni. This ensures that no SNI is sent if not explicitly configured, unless the legacy channel authority fallback is enabled. (#12625) (ac44e9681)
New Features
- core: pick_first shuffling now a weighted shuffle and observes weights from EDS (34dd29042). This finishes the gRFC A113 pick_first: Weighted Random Shuffling support
- netty: Added RFC 3986 support to the unix: name resolver. This enables proper parsing of Unix domain socket URIs, including correct handling of query and fragment components in both hierarchical (e.g., unix:///path) and opaque (e.g., unix:/path) formats. (#12659)
Thanks to
- @becomeStar
- @aymanm-google
- @PetitBaguette
- @stagegrowth
- @wcchoi
- @Gyuhyeok99
7.0.4
- Update
RestTemplateBuilderusage inopaque-token.adoc#18836
- Fix GrantedAuthority.authority null in AuthoritiesAuthorizationManager #18784
- Add Jackson Mixin for WebAuthnAuthentication #18878
- Add Missing OnCommitedResponseWrapper Header Overrides #18799
- Document the change in dependency coordinates with Spring Security 7 #18773
- Ensure tests clear AuthorizationServerContextHolder #18768
- Fix CookieRequestCache parameters #18864
- Fix Flaky Crypto Tests #18842
- Fix Jackson Deserializer for AuthenticationExtensionsClientOutputs #18897
- HttpMessageConverterAuthenticationSuccessHandler Supports Jackson 3 #18834
- OAuth2DeviceVerificationEndpointFilter should be applied after AuthorizationFilter #18873
- Restore upgradeEncoding condition in DaoAuthenticationProvider #18788
- saveAuthenticationRequest should read relayState from authenticationRequest #18884
- SecurityExpressionRoot#hasAuthority should delegate to AuthorizationManagerFactory#hasAuthority #18487
- ServerHttpSecurityConfiguration should not set userDetailsPasswordService to a null value #18276
- TokenBasedRememberMeServices documentation snippets should compile #18642
- Update request-matcher XML property to support PathPatternRequestMatcher #18737
- Bump
@antora/collector-extension from 1.0.2 to 1.0.3 in /docs #18853 - Bump actions/upload-artifact from 6.0.0 to 7.0.0 #18810
- Bump ch.qos.logback:logback-classic from 1.5.29 to 1.5.32 #18752
- Bump com.webauthn4j:webauthn4j-core from 0.31.0.RELEASE to 0.31.1.RELEASE #18830
- Bump io.projectreactor:reactor-bom from 2025.0.3 to 2025.0.4 #18877
- Bump org-apache-maven-resolver from 1.9.25 to 1.9.26 #18751
- Bump org-apache-maven-resolver from 1.9.26 to 1.9.27 #18792
- Bump org.apache.maven:maven-resolver-provider from 3.9.12 to 3.9.13 #18861
- Bump org.apache.maven:maven-resolver-provider from 3.9.13 to 3.9.14 #18887
- Bump org.junit:junit-bom from 6.0.2 to 6.0.3 #18743
- Bump org.springframework.data:spring-data-bom from 2025.1.3 to 2025.1.4 #18904
- Bump org.springframework:spring-framework-bom from 7.0.4 to 7.0.5 #18764
- Bump org.springframework:spring-framework-bom from 7.0.5 to 7.0.6 #18905
- Update Antora UI Spring to v0.4.26 #18893
- Update to spring-security-release-tools 1.0.15 #18909
Thank you to all the contributors who worked on this release:
@busoco-sjb, @making, @meliezer, @ngocnhan-tran1996, @rwinch, @sephiroth-j, @therepanic, @thuri, and @ziqin